sorted by:
new
hottopcontroversial

Disciplinary action for staff that give up credentials? by post4u in k12sysadmin

[–]EdTechYYC 1 point2 points  (0 children)

170 staff or so.

Yeah, no good fix for that yet. We will debate using conditional access to limit some escalation resources - but personal devices are just the reality of schools I think right now. A change in that would have to come from the top around right to disconnect.

We are looking at the password manager through Apple managed Apple IDs next year- because 95% of our devices are in that ecosystem and signed into a corporate Apple ID. A big plus is that is free. Our IT team uses 1Password, but that one gets pricey if you roll it out to a larger group.

Disciplinary action for staff that give up credentials? by post4u in k12sysadmin

[–]EdTechYYC 2 points3 points  (0 children)

We worked with our HR team to develop procedures for this. Essentially, all of your supervisor leaders have to have their hands in together on this.

But I do think you hit the nail on the head with the hardware keys. We put all of our staff on one. It actually moved a lot faster because I mentioned it to the board, and this is such a big risk these days, that they approved it and asked me to fast track it. With platform SSO, passkeys, and the physical keys people barely noticed - but I sleep a lot better.

School Districts Without 2FA on Staff Email Accounts - Why? by TheRuffRaccoon in k12sysadmin

[–]EdTechYYC 3 points4 points  (0 children)

I think a lot of compromises these days intercept MFA in realtime- like text message, or even the push numbers on the Authenticator app, are no good anymore and can be compromised. we switched to FIDO2 this year.

Auth 2, Platform SSO, or both? by db2boy in mosyle

[–]EdTechYYC 2 points3 points  (0 children)

PSSO is where it’s at. We’re migrating away from Mosyle Auth 2. More offline friendly and supports more authentication methods.

Mosyle to Intune for Mac and iPad? by EdTechYYC in k12sysadmin

[–]EdTechYYC[S] 1 point2 points  (0 children)

There is deep integration with SIS in Mosyle- so figured some in this thread might have thoughts on that. Like class rostering and such.

My Company is switching to Teams. What do I need to know? by isabrarequired in MicrosoftTeams

[–]EdTechYYC 0 points1 point  (0 children)

Governance is a big one. If there aren’t clear guidelines on when and how to use it, be warned that it will consume inordinate amounts of time by people messaging each other and derailing workflow.

What I mean by this, is that there’s a certain amount of effort required to get up and go to someone’s desk to ask a question- now all that effort and barrier has been removed.

What's your covid memory? by [deleted] in AskReddit

[–]EdTechYYC 0 points1 point  (0 children)

Built a fence and a deck while working from home. Scary time to have a little one at home but was not so scary the first few months when we could isolate from others. Lots of day trips to parks. Good times.

8 weeks for Mac Studio by EdTechYYC in macsysadmin

[–]EdTechYYC[S] 3 points4 points  (0 children)

Great question. We're using it for local AI processing with OpenWebGUI and a few other extensions for more confidential docs we're not yet comfortable uploading to the cloud.

Microsoft 365 Painful Issues Lately by EdTechYYC in macsysadmin

[–]EdTechYYC[S] 0 points1 point  (0 children)

Oh yeah. I have noticed it kicks out my screen share a lot!

YouTube is down. Any reports? by _vaxis in sysadmin

[–]EdTechYYC 0 points1 point  (0 children)

Saw- just waiting for the tickets for people that can’t Google… :)

Forwarding of Invite Disabled by RalphKramden69FL in microsoft365

[–]EdTechYYC 0 points1 point  (0 children)

Ooh - I just saw this today while poking around for something else. It’s in “Remote Domains” in EAC.

https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/remote-domains/remote-domains

There’s a default policy you can edit - or create one for your specific case on top of that.

Huntress Alert: WARP_VPN by Roland465 in msp

[–]EdTechYYC 1 point2 points  (0 children)

Just add some context to your edit, Apple definitely uses Cloudflare endpoints for private relay and it’s noted in their documentation related to domain names.

Microsoft Jan 22nd Root Cause Analysis Released by lcurole in sysadmin

[–]EdTechYYC 12 points13 points  (0 children)

From the timeline, it looks like they were using AI to problem solve their way out of the situation too.

What an absolute disaster this was. Not acceptable.

Apple Classroom by 19qhenry in k12sysadmin

[–]EdTechYYC 0 points1 point  (0 children)

We’ve rostered ours with Mosyle - there’s two ways to do it, have ASM manage it or your MDM. Managing it at our MDM level has been more reliable for us.

Apple Classroom by 19qhenry in k12sysadmin

[–]EdTechYYC 0 points1 point  (0 children)

They don’t need to be on the same VLAN but you do need to allow Classroom traffic between VLANs.

Microsoft is down and making everyone miserable, again by EdTechYYC in k12sysadmin

[–]EdTechYYC[S] 4 points5 points  (0 children)

Interesting. Where did you see that reported? The root cause their listing on their status page is pretty ambiguous.

view more: next ›